CVE-2004-2125

Sažetak

Buffer overflow in blackd.exe for BlackICE PC Protection 3.6 and other versions before 3.6.ccb, with application protection off, allows local users to gain system privileges by modifying the .INI file to contain a long packetLog.fileprefix value.

Reference

http://archives.neohapsis.com/archives/iss/2004-q1/0157.html
http://marc.info/?l=bugtraq&m=107530966524193&w=2
http://secunia.com/advisories/10739
http://www.osvdb.org/3740
http://www.securityfocus.com/bid/9514
https://exchange.xforce.ibmcloud.com/vulnerabilities/14965

CVSS

Base:	4.6
Impact:	6.4
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

11-07-2017 - 01:31

Objavljeno

31-12-2004 - 05:00